HCL AION is affected by a vulnerability where sensitive information may be included in URL parameters
This vulnerability in HCL AION allows sensitive information to be exposed when included directly in URL parameters. This data can then be captured through browser history, logs, or intermediate systems, leading to unintended information disclosure.
HCL AION is affected by a vulnerability where sensitive information may be included in URL parameters. Passing sensitive data in URLs may expose it through browser history, logs, or intermediary systems, potentially leading to unintended information disclosure under certain conditions.
Organizations using HCL AION are at low risk of sensitive information being exposed through URL parameters, potentially compromising user data.
Monitor & Review
Low severity — keep this CVE on your radar and patch during routine maintenance.
What should I do?
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:A/AC:H/PR:L/UI:R/S:C/C:L/I:N/A:N
0
Affected Products
1
References
CVSS:3.1/AV:A/AC:H/PR:L/UI:R/S:C/C:L/I:N/A:N
Exploitability
Impact